Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/OD5jOwystZwBQcc3kkjlanRS_cg.roa
File: OD5jOwystZwBQcc3kkjlanRS_cg.roa (raw, json)
Hash identifier: DhpV1/6KnZR5RhgqNF1XAr73qzHrzworlpoGVGxded8=
Subject key identifier: 38:3E:63:3B:0C:AC:B5:9C:01:41:C7:37:92:48:E5:6A:74:52:FD:C8
Certificate issuer: /CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Certificate serial: 01930C35EEEEC4593679F383727954FE6BE8
Authority key identifier: E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/OD5jOwystZwBQcc3kkjlanRS_cg.roa
Signing time: Fri 08 Nov 2024 14:38:01 +0000
ROA not before: Fri 08 Nov 2024 14:38:01 +0000
ROA not after: Tue 01 Jul 2025 00:00:00 +0000
asID: 8400
IP address blocks: 5.154.225.0/24 maxlen: 24
37.153.174.0/24 maxlen: 24
46.17.120.0/21 maxlen: 21
62.101.128.0/20 maxlen: 20
77.46.128.0/17 maxlen: 17
79.101.0.0/16 maxlen: 16
79.101.0.0/21 maxlen: 21
79.101.21.0/24 maxlen: 24
87.250.32.0/19 maxlen: 19
89.39.144.0/23 maxlen: 23
89.46.126.0/23 maxlen: 23
89.47.40.0/23 maxlen: 23
91.150.64.0/18 maxlen: 18
91.150.64.0/23 maxlen: 23
91.150.66.0/24 maxlen: 24
91.150.91.0/24 maxlen: 24
92.60.224.0/24 maxlen: 24
92.60.225.0/24 maxlen: 24
92.60.226.0/24 maxlen: 24
92.60.229.0/24 maxlen: 24
92.60.230.0/24 maxlen: 24
92.60.231.0/24 maxlen: 24
92.60.233.0/24 maxlen: 24
92.60.237.0/24 maxlen: 24
92.60.238.0/24 maxlen: 24
92.60.239.0/24 maxlen: 24
92.244.128.0/19 maxlen: 19
93.86.0.0/15 maxlen: 15
93.86.0.0/16 maxlen: 16
93.87.0.0/16 maxlen: 16
93.87.38.0/24 maxlen: 24
93.87.39.0/24 maxlen: 24
93.87.50.0/24 maxlen: 24
93.87.58.0/24 maxlen: 24
94.228.229.0/24 maxlen: 24
94.228.231.0/24 maxlen: 24
94.228.234.0/24 maxlen: 24
94.228.237.0/24 maxlen: 24
109.72.48.0/20 maxlen: 20
109.92.0.0/15 maxlen: 15
109.122.64.0/18 maxlen: 24
109.122.77.0/24 maxlen: 24
109.198.0.0/19 maxlen: 19
176.67.192.0/24 maxlen: 24
176.67.202.0/23 maxlen: 23
176.67.204.0/24 maxlen: 24
176.67.206.0/23 maxlen: 23
176.67.210.0/24 maxlen: 24
176.67.214.0/24 maxlen: 24
176.67.217.0/24 maxlen: 24
176.67.218.0/24 maxlen: 24
176.67.221.0/24 maxlen: 24
178.17.30.0/24 maxlen: 24
178.79.0.0/18 maxlen: 18
178.220.0.0/15 maxlen: 15
178.222.0.0/16 maxlen: 16
178.223.0.0/17 maxlen: 17
178.223.128.0/18 maxlen: 18
178.223.192.0/19 maxlen: 19
185.26.172.0/22 maxlen: 22
185.27.128.0/24 maxlen: 24
185.71.88.0/22 maxlen: 22
185.157.104.0/22 maxlen: 22
185.190.152.0/22 maxlen: 22
188.240.200.0/24 maxlen: 24
188.240.201.0/24 maxlen: 24
195.178.32.0/19 maxlen: 19
212.62.59.0/24 maxlen: 24
212.200.0.0/16 maxlen: 16
212.200.0.0/17 maxlen: 17
212.200.0.0/21 maxlen: 21
212.200.8.0/22 maxlen: 22
212.200.12.0/23 maxlen: 23
212.200.45.0/24 maxlen: 24
212.200.50.0/24 maxlen: 24
212.200.51.0/24 maxlen: 24
212.200.52.0/24 maxlen: 24
212.200.123.0/24 maxlen: 24
212.200.128.0/17 maxlen: 17
212.200.128.0/18 maxlen: 18
212.200.132.0/24 maxlen: 24
212.200.192.0/19 maxlen: 19
212.200.224.0/24 maxlen: 24
212.200.225.0/24 maxlen: 24
212.200.226.0/23 maxlen: 23
212.200.228.0/22 maxlen: 22
212.200.232.0/21 maxlen: 21
212.200.240.0/20 maxlen: 20
213.196.96.0/20 maxlen: 20
2a00:e90::/32 maxlen: 32
2a06:5b00::/29 maxlen: 29
2a06:63c0::/29 maxlen: 29
Validation: Failed, certificate revoked on Tue 12 Nov 2024 14:26:09 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:93:0c:35:ee:ee:c4:59:36:79:f3:83:72:79:54:fe:6b:e8
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e9b1320fbc24d6f4366cb64fcf5ed2d7b1b6bdf7
Validity
Not Before: Nov 8 14:38:01 2024 GMT
Not After : Jul 1 00:00:00 2025 GMT
Subject: CN=383e633b0cacb59c0141c7379248e56a7452fdc8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:da:d1:aa:70:ed:5b:03:ea:04:71:56:da:cc:b8:
3d:11:4a:8d:33:b3:f6:73:4e:fd:6c:79:fd:42:28:
9c:6d:6c:1c:fe:b7:01:a6:94:f9:50:d0:5f:7f:e4:
be:84:1b:ea:96:e9:10:b1:c4:f9:93:2c:54:09:6d:
96:91:14:1e:ed:4a:ce:26:91:de:80:8e:a5:67:e5:
2f:93:b9:4b:80:c5:f8:5d:71:45:b4:3c:6c:59:49:
51:3e:3d:31:44:ea:70:b6:1d:80:8c:4e:a3:32:6f:
f7:ce:3b:78:c4:a8:a8:02:cf:dc:d5:1b:d0:b8:33:
82:cf:03:7a:34:f4:20:d3:3f:dd:25:3b:9a:51:9e:
b0:70:c4:ad:6b:8e:a8:c9:42:fd:ab:9f:b6:b7:25:
ab:ad:3f:82:37:e9:9d:f6:88:eb:c3:46:74:99:3c:
a9:df:5a:7e:d0:d6:d5:d7:2b:44:45:05:47:bd:66:
1f:2d:36:22:6d:a5:52:45:4b:af:ec:c0:35:f8:40:
cc:09:20:e1:3d:bb:75:05:d2:a1:75:b1:8f:f0:49:
66:5e:70:b7:59:f4:8c:12:f9:7a:c1:c6:e9:54:44:
52:03:3b:4a:7b:6c:5b:49:85:92:8b:b7:13:c0:78:
7b:bd:97:35:1d:23:5f:a3:c0:44:7b:b9:af:62:b4:
dd:bf
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
38:3E:63:3B:0C:AC:B5:9C:01:41:C7:37:92:48:E5:6A:74:52:FD:C8
X509v3 Authority Key Identifier:
keyid:E9:B1:32:0F:BC:24:D6:F4:36:6C:B6:4F:CF:5E:D2:D7:B1:B6:BD:F7
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/6bEyD7wk1vQ2bLZPz17S17G2vfc.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/OD5jOwystZwBQcc3kkjlanRS_cg.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/df1cb5-5f48-46a0-a76e-d3e2800bd640/1/6bEyD7wk1vQ2bLZPz17S17G2vfc.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
5.154.225.0/24
37.153.174.0/24
46.17.120.0/21
62.101.128.0/20
77.46.128.0/17
79.101.0.0/16
87.250.32.0/19
89.39.144.0/23
89.46.126.0/23
89.47.40.0/23
91.150.64.0/18
92.60.224.0-92.60.226.255
92.60.229.0-92.60.231.255
92.60.233.0/24
92.60.237.0-92.60.239.255
92.244.128.0/19
93.86.0.0/15
94.228.229.0/24
94.228.231.0/24
94.228.234.0/24
94.228.237.0/24
109.72.48.0/20
109.92.0.0/15
109.122.64.0/18
109.198.0.0/19
176.67.192.0/24
176.67.202.0-176.67.204.255
176.67.206.0/23
176.67.210.0/24
176.67.214.0/24
176.67.217.0-176.67.218.255
176.67.221.0/24
178.17.30.0/24
178.79.0.0/18
178.220.0.0-178.223.223.255
185.26.172.0/22
185.27.128.0/24
185.71.88.0/22
185.157.104.0/22
185.190.152.0/22
188.240.200.0/23
195.178.32.0/19
212.62.59.0/24
212.200.0.0/16
213.196.96.0/20
IPv6:
2a00:e90::/32
2a06:5b00::/29
2a06:63c0::/29
Signature Algorithm: sha256WithRSAEncryption
57:1c:ef:44:fc:e8:d1:94:3b:db:0a:ac:c8:54:b7:1f:5e:0e:
0c:ad:b8:d0:86:97:12:51:6e:0d:1a:f7:7b:22:99:f9:8d:64:
38:ef:1b:41:ca:94:3a:e9:28:6a:b6:b7:72:2c:c9:63:85:1b:
3a:94:48:eb:dd:e2:fe:f2:69:4d:6d:c1:48:5e:3a:47:86:03:
61:98:c6:9e:19:89:72:93:4a:54:bd:cc:5f:14:35:3c:23:52:
52:dd:d0:f2:46:cd:86:f4:7a:65:d5:c8:78:07:88:73:a5:1f:
ef:18:b3:0a:2b:c0:70:f6:d1:83:53:ca:8c:46:bd:f8:ca:7e:
2c:28:fb:b3:1c:a5:e5:ae:c1:00:8f:7f:3b:85:77:d4:e7:f5:
c5:d9:cf:78:c2:10:04:11:dd:b1:2f:02:57:56:e1:bb:d1:d3:
d3:ce:e5:70:2d:22:b7:96:45:b2:09:6e:96:97:2d:8e:25:c7:
5b:20:66:bd:63:ce:1b:22:68:4e:9d:d9:2c:05:21:70:c5:f0:
4e:9e:e8:d2:12:bd:c5:22:37:5c:71:f1:79:c3:8b:62:a3:22:
3a:35:02:e6:8f:bc:9f:9c:29:16:8b:4b:4c:da:f0:9f:c5:7e:
57:65:16:25:ae:66:94:8b:f2:ba:c4:55:4a:63:a8:f1:4b:6e:
2a:8e:34:63
-----BEGIN CERTIFICATE-----
MIIGVzCCBT+gAwIBAgISAZMMNe7uxFk2efODcnlU/mvoMA0GCSqGSIb3DQEBCwUA
MDMxMTAvBgNVBAMTKGU5YjEzMjBmYmMyNGQ2ZjQzNjZjYjY0ZmNmNWVkMmQ3YjFi
NmJkZjcwHhcNMjQxMTA4MTQzODAxWhcNMjUwNzAxMDAwMDAwWjAzMTEwLwYDVQQD
EygzODNlNjMzYjBjYWNiNTljMDE0MWM3Mzc5MjQ4ZTU2YTc0NTJmZGM4MIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2tGqcO1bA+oEcVbazLg9EUqNM7P2
c079bHn9QiicbWwc/rcBppT5UNBff+S+hBvqlukQscT5kyxUCW2WkRQe7UrOJpHe
gI6lZ+Uvk7lLgMX4XXFFtDxsWUlRPj0xROpwth2AjE6jMm/3zjt4xKioAs/c1RvQ
uDOCzwN6NPQg0z/dJTuaUZ6wcMSta46oyUL9q5+2tyWrrT+CN+md9ojrw0Z0mTyp
31p+0NbV1ytERQVHvWYfLTYibaVSRUuv7MA1+EDMCSDhPbt1BdKhdbGP8ElmXnC3
WfSMEvl6wcbpVERSAztKe2xbSYWSi7cTwHh7vZc1HSNfo8BEe7mvYrTdvwIDAQAB
o4IDYzCCA18wHQYDVR0OBBYEFDg+YzsMrLWcAUHHN5JI5Wp0Uv3IMB8GA1UdIwQY
MBaAFOmxMg+8JNb0Nmy2T89e0textr33MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF
BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv
c2l0b3J5L0RFRkFVTFQvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNlcjCB
jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu
bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUt
ZDNlMjgwMGJkNjQwLzEvT0Q1ak93eXN0WndCUWNjM2tramxhblJTX2NnLnJvYTCB
gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv
cnkvREVGQVVMVC9kZC9kZjFjYjUtNWY0OC00NmEwLWE3NmUtZDNlMjgwMGJkNjQw
LzEvNmJFeUQ3d2sxdlEyYkxaUHoxN1MxN0cydmZjLmNybDAYBgNVHSABAf8EDjAM
MAoGCCsGAQUFBw4CMIIBdwYIKwYBBQUHAQcBAf8EggFmMIIBYjCCAUEEAgABMIIB
OQMEAAWa4QMEACWZrgMEAy4ReAMEBD5lgAMEB00ugAMDAE9lAwQFV/ogAwQBWSeQ
AwQBWS5+AwQBWS8oAwQGW5ZAMAwDBAVcPOADBABcPOIwDAMEAFw85QMEA1w84AME
AFw86TAMAwQAXDztAwQEXDzgAwQFXPSAAwMBXVYDBABe5OUDBABe5OcDBABe5OoD
BABe5O0DBARtSDADAwFtXAMEBm16QAMEBW3GAAMEALBDwDAMAwQBsEPKAwQAsEPM
AwQBsEPOAwQAsEPSAwQAsEPWMAwDBACwQ9kDBACwQ9oDBACwQ90DBACyER4DBAay
TwAwCwMDArLcAwQFst/AAwQCuRqsAwQAuRuAAwQCuUdYAwQCuZ1oAwQCub6YAwQB
vPDIAwQFw7IgAwQA1D47AwMA1MgDBATVxGAwGwQCAAIwFQMFACoADpADBQMqBlsA
AwUDKgZjwDANBgkqhkiG9w0BAQsFAAOCAQEAVxzvRPzo0ZQ72wqsyFS3H14ODK24
0IaXElFuDRr3eyKZ+Y1kOO8bQcqUOukoara3cizJY4UbOpRI693i/vJpTW3BSF46
R4YDYZjGnhmJcpNKVL3MXxQ1PCNSUt3Q8kbNhvR6ZdXIeAeIc6Uf7xizCivAcPbR
g1PKjEa9+Mp+LCj7sxyl5a7BAI9/O4V31Of1xdnPeMIQBBHdsS8CV1bhu9HT087l
cC0it5ZFsglulpctjiXHWyBmvWPOGyJoTp3ZLAUhcMXwTp7o0hK9xSI3XHHxecOL
YqMiOjUC5o+8n5wpFotLTNrwn8V+V2UWJa5mlIvyusRVSmOo8UtuKo40Yw==
-----END CERTIFICATE-----
Generated at Tue Nov 12 19:20:00 2024 by rpki-client on console-ams.rpki-client.org